Cyber Incident Scenarios in the Maritime Industry: Risk Assessment and Mitigation Strategies

Abstract

The maritime industry is facing an escalating concern of cybersecurity threats, which can be attributed to the rapid growth of digital technologies and the recent adoption of autonomous and semi-autonomous shipping. To address this issue, various published papers have proposed cyberattack scenarios aiming to increase cybersecurity awareness and enhance the security of maritime systems. This research aims to assess the cybersecurity threats in the maritime sector by presenting three practical cyberattack scenarios and their corresponding risks and mitigation strategies. The first scenario involves the risks associated with utilizing the systems of a tug-boat as part of an attack vector, the second scenario examines the systems involved in vessel harbour manoeuvres using a laser docking system or Radar, and the third scenario examines an insider attack through malicious or unauthorized access to the Berthing Aid System (BAS).